TechFlow reported that Solana DEX aggregator Jupiter recently discovered a malicious Chrome extension named "Bull Checker." Posing as a Meme coin inspection tool, this extension can actually read and modify data across all websites, leading to fund theft from multiple Solana DeFi users.
Jupiter collaborated with projects including Offside Labs, Blowfish, Raydium, and Phantom for technical analysis. Findings revealed that the extension alters transaction details during normal user interactions while keeping simulation results unchanged, thereby evading user suspicion.
Jupiter urges users to immediately remove any suspicious extensions and reminds them to exercise caution with social media recommendations, especially extensions requesting broad permissions.
